So, the main question is - How to start working with HatSploit? We have an answer, this guide is for learning how to use HatSploit.
First Run
First, you need to run HatSploit, for this, open your terminal and type hsf
. After this, you will see the terms of service message, accept it, and continue.
[?] Accept HatSploit Framework Terms of Service? [y/n]
After this, HatSploit will ask you to build base databases, this means that HatSploit will load all modules, plugins, and payloads and will save them to the base database.
[?] Do you want to build and connect base databases? [y/n]
After all these setup steps completed, the main HatSploit interface appears.
Unable to handle kernel NULL pointer dereference at virtual address 0xd34db33f
EFLAGS: 00010046
eax: 00000001 ebx: f77c8c00 ecx: 00000000 edx: f77f0001
esi: 803bf014 edi: 8023c755 ebp: 80237f84 esp: 80237f60
ds: 0018 es: 0018 ss: 0018
Process Swapper (Pid: 0, process nr: 0, stackpage=80377000)
Stack: hhhhhhhh..........hhhhhhhh
hhhhhhhh..........hhhhhhhh
hhhhhhhhhhhhhhhhhhhhhhhhhh
hhhhhhhh..........hhhhhhhh
hhhhhhhh..........hhhhhhhh
hhhhhhhh..........hhhhhhhh
..........................
cccccccccccccccccccccccccc
cccccccccccccccccccccccccc
ccccccccc.................
cccccccccccccccccccccccccc
cccccccccccccccccccccccccc
.................ccccccccc
cccccccccccccccccccccccccc
cccccccccccccccccccccccccc
..........................
ffffffffffffffffffffffffff
ffffffff..................
ffffffffffffffffffffffffff
ffffffff..................
ffffffff..................
ffffffff..................
Code: 00 00 00 00 H4 T! SP L0 1T FR 4M 3W OR K! V3 R5 I0 N1 00 00 00 00
Aiee, Killing Interrupt handler
Kernel panic: Attempted to kill the idle task!
In swapper task - not syncing
--=[ HatSploit Framework 7.0.0 n0w4r (https://hatsploit.com)
--==--=[ Developed by EntySec (https://entysec.com)
--=[ 66 modules | 39 payloads | 2 encoders | 2 plugins
HatSploit Tip: Run exec to execute system commands
[hsf7]>
Using Commands
HatSploit has various commands for interacting with its function, you can type help
or ?
for getting a list of these commands. After doing this, you will see a description for each of them.
Core Commands:
Command Description
------- -----------
clear Clear terminal window.
exit Exit HatSploit Framework.
help Show available commands.
search Search payloads, modules and plugins.
HatSploit Framework interface has special functions:
-
?
is used to show all loaded interface commands. -
&
is used to execute commands in the background. -
!
is used to execute system commands.
[hsf]> !whoami
[*] Executing system command: whoami
enty8080
[hsf]>
:
is used to execute commands from file.
[hsf]> :/home/user/script.hsf
#
is used for commenting.
[hsf]> # just a comment
[hsf]>
Using Run Options
Run options are options that you can select on startup via command-line arguments.
usage: hsf [-h] [-c] [--check-modules] [--check-payloads] [--check-encoders]
[--check-plugins] [--rpc] [--host HOST] [--port PORT] [-u] [-s SCRIPT] [--no-exit]
[--no-startup]
Modular penetration testing platform that enables you to write, test, and execute exploit
code.
optional arguments:
-h, --help show this help message and exit
-c, --check Check base modules, payloads, encoders and plugins.
--check-modules Check only base modules.
--check-payloads Check only base payloads.
--check-encoders Check only base encoders.
--check-plugins Check only base plugins.
--rpc Start HatSploit RPC server.
--host HOST HatSploit RPC server host. [default: 127.0.0.1]
--port PORT HatSploit RPC server port. [default: 5000]
-u, --update Update HatSploit Framework.
-s SCRIPT, --script SCRIPT
Execute HatSploit commands from script file.
--no-exit Do not exit after script execution.
--no-startup Do not execute startup.hsf file.
HatSploit Startup file
HatSploit startup file contains all commands that should be executed on startup. It is placed in the HatSploit workplace - ~/.hsf/startup.hsf
.